Medium Severity

IBM Security Bulletin: Weaker than expected security in WebSphere Application Server with SP800-131 transition mode (CVE-2018-1996)

Share this post:

There is a potential for weaker than expected security in WebSphere Application Server with SP800-131 transition mode and SSL_TLSv2.

CVE(s): CVE-2018-1996

Affected product(s) and affected version(s):

This vulnerability affects the following versions and releases of IBM WebSphere Application Server:

  • Version 9.0
  • Version 8.5
  • Version 8.0
  • Version 7.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10793421
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/154650

More stories

IBM Security Bulletin: Incorrect permissions on restored files and directories using IBM Spectrum Protect Backup-Archive Client web user interface on Windows (CVE-2019-4093)

Mar 26, 2019 10:01 am EDT | Medium Severity

Files and directories restored using the IBM Spectrum Protect (formerly Tivoli Storage Manager) Backup-Archive Client web user interface on Windows may have incorrect permissions. CVE(s): CVE-2019-4093 Affected product(s) and affected version(s):IBM Spectrum Protect (formerly Tivoli Storage Manager) Backup-Archive Client web user interface version 8.1.7 on Windows. Refer to the following reference URLs for remediation and ...read more


IBM Security Bulletin: IBM MQ Appliance is affected by OpenSSL vulnerabilities (CVE-2018-0732 and CVE-2018-0739)

Mar 26, 2019 10:00 am EDT | Medium Severity

IBM MQ Appliance has addressed the following OpenSSL vulnerabilities. CVE(s): CVE-2018-0732, CVE-2018-0739 Affected product(s) and affected version(s): IBM MQ Appliance 9.1 Long Term Support (LTS) Release Maintenance levels between 9.1.0.0 and 9.1.0.1 IBM MQ Appliance 9.1.x Continuous Delivery (CD) Release Continuous delivery updates 9.1.1 Refer to the following reference URLs for remediation and additional vulnerability ...read more


IBM Security Bulletin: Vulnerability CVE-2018-14647 in Python affects IBM i

Mar 26, 2019 10:00 am EDT | Medium Severity

Python is supported by IBM i. IBM i has addressed the applicable CVE. CVE(s): CVE-2018-14647 Affected product(s) and affected version(s): Releases 7.1, 7.2 and 7.3 of IBM i are affected. Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10876694X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/150579 ...read more